Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,839 advisories

Loading
Micron Crucial MX500 Series Solid State Drives M3CR046 is vulnerable to Buffer Overflow, which... Critical Unreviewed
CVE-2024-42642 was published Sep 4, 2024
The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were... Critical Unreviewed
CVE-2024-8384 was published Sep 3, 2024
Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of... Critical Unreviewed
CVE-2024-8387 was published Sep 3, 2024
Memory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory... Critical Unreviewed
CVE-2024-8389 was published Sep 3, 2024
HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an... Critical Unreviewed
CVE-2024-45508 was published Sep 2, 2024
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function... Critical Unreviewed
CVE-2024-44551 was published Aug 26, 2024
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function... Critical Unreviewed
CVE-2024-44555 was published Aug 26, 2024
A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute... Critical Unreviewed
CVE-2024-41285 was published Aug 26, 2024
An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling... Critical Unreviewed
CVE-2024-30949 was published Aug 20, 2024
Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers... Critical Unreviewed
CVE-2024-23497 was published Aug 14, 2024
In venc, there is a possible out of bounds write due to a missing bounds check. This could lead... Critical Unreviewed
CVE-2024-20083 was published Aug 14, 2024
Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays... Critical Unreviewed
CVE-2024-39791 was published Aug 12, 2024
There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to... Critical Unreviewed
CVE-2024-42394 was published Aug 6, 2024
There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to... Critical Unreviewed
CVE-2024-42393 was published Aug 6, 2024
There is a vulnerability in the AP Certificate Management Service which could allow a threat... Critical Unreviewed
CVE-2024-42395 was published Aug 6, 2024
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via... Critical Unreviewed
CVE-2024-41459 was published Jul 24, 2024
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via... Critical Unreviewed
CVE-2024-41461 was published Jul 24, 2024
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via... Critical Unreviewed
CVE-2024-41460 was published Jul 24, 2024
open5gs v2.6.4 is vulnerable to Buffer Overflow. via /lib/core/abts.c. Critical Unreviewed
CVE-2024-40130 was published Jul 16, 2024
Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnerability... Critical Unreviewed
CVE-2024-33180 was published Jul 16, 2024
Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnerability... Critical Unreviewed
CVE-2024-33182 was published Jul 16, 2024
A vulnerability in /goform/SetStaticRouteCfg in the sub_519F4 function in Tenda AX1806 1.0.0.1... Critical Unreviewed
CVE-2024-40415 was published Jul 15, 2024
A vulnerability in /goform/SetNetControlList in the sub_656BC function in Tenda AX1806 1.0.0.1... Critical Unreviewed
CVE-2024-40414 was published Jul 15, 2024
The SMTP Listener of Secure Email Gateway from Cellopoint does not properly validate user input,... Critical Unreviewed
CVE-2024-6744 was published Jul 15, 2024
vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC... Critical Unreviewed
CVE-2024-37079 was published Jun 18, 2024
ProTip! Advisories are also available from the GraphQL API